Replace Maestro GitHub PAT used in CI #4081

oleksandr-didyk · 2024-10-22T12:51:52Z

Our scenario tests are currently relying on a personal GitHub PAT token for GitHub operations, such as clean-up.

We should replace it with a bot PAT token that is managed by secret manager.

oleksandr-didyk · 2024-10-24T15:51:50Z

Discusser over Teams and decided to add replace both GitHub PAT tokens used in the build pipeline:

Additionally, decided to use the fine-grained token type to limit how much access each token gives

oleksandr-didyk · 2024-10-24T16:03:08Z

After the tokens are replaced, we need to clean-up:

Additionally, if we need to add any new variable groups or service connections we should make sure they have adequate ownership setup for the team

oleksandr-didyk · 2024-10-30T09:22:00Z

Removal of an obsolete reference to the previous Maestro scenario test token - https://dev.azure.com/dnceng/internal/_git/dotnet-release/pullrequest/44522

oleksandr-didyk · 2024-11-11T11:57:04Z

Removed obsolete variable groups from AzDO

oleksandr-didyk self-assigned this Oct 22, 2024

oleksandr-didyk mentioned this issue Oct 22, 2024

Replace maestro test token for GitHub #4082

Closed

premun added Ops - First Responder Ops - Compliance and removed Ops - First Responder labels Oct 22, 2024

oleksandr-didyk changed the title ~~Replace Maestro GitHub PAT used for scenario tests~~ Replace Maestro GitHub PAT used in CI Oct 24, 2024

oleksandr-didyk mentioned this issue Oct 24, 2024

Replace GitHub tokens used in CI #4106

Merged

This was referenced Oct 30, 2024

Fixup GitHub token name #4118

Merged

Remove obsolete var group #4122

Merged

oleksandr-didyk closed this as completed Nov 11, 2024

Provide feedback